A method for secure storage of an embedded Subscriber Identity Module (eSIM) on a wireless communication device including an embedded Universal Integrated Circuit Card (eUICC) and a memory external to the eUICC is provided. The method can include the eUICC determining that an eSIM package including an eSIM is to be stored on the memory. The method can also include the eUICC, in response to determining that the eSIM package is to be stored on the memory, maintaining a single-use session parameter associated with the eSIM package to enable installation of the eSIM on the eUICC if the eSIM package is later loaded onto the eUICC from the memory.
Legal claims defining the scope of protection, as filed with the USPTO.
1. A method for exporting and securely storing an embedded Subscriber Identity Module (eSIM) in a wireless communication device that includes (i) an embedded Universal Integrated Circuit Card (eUICC), and (ii) a memory external to the eUICC, the method comprising: by the eUICC: determining to export the eSIM from the eUICC and to store securely the eSIM on the memory external to the eUICC; generating a single-use session parameter to support exportation of the eSIM; encrypting the eSIM with a key associated with the eUICC; formatting an eSIM package to include (i) the eSIM encrypted with the key, and (ii) the single-use session parameter; exporting the eSIM package from the eUICC to the memory external to the eUICC; and deleting the eSIM from the eUICC, wherein the eUICC maintains the single-use session parameter to enable re-installation of the eSIM on the eUICC when the eSIM package is loaded back onto the eUICC from the memory external to the eUICC.
2. The method of claim 1 , wherein the single-use session parameter comprises a level 2 (L2) security value.
3. The method of claim 1 , further comprising: by the eUICC: receiving the eSIM package from the memory external to the eUICC; using the single-use session parameter to verify a validity of the eSIM package; and when the validity of the eSIM package is verified: installing the eSIM on the eUICC.
4. The method of claim 3 , further comprising: by the eUICC: deleting the single-use session parameter from the eUICC after verifying the validity of the eSIM package.
5. The method of claim 3 , further comprising: by the eUICC: causing the eSIM package to be deleted from the memory external to the eUICC.
6. The method of claim 1 , wherein the eUICC determines to export and store securely the eSIM during an eSIM provisioning session between the eUICC and a provisioning server.
7. The method of claim 6 , wherein the eUICC determines to export and store securely the eSIM in response to a lack of sufficient storage space on the eUICC.
8. A wireless communication device, comprising: an embedded Universal Integrated Circuit Card (eUICC); and a memory external to the eUICC, wherein the eUICC is configured to carry out steps that include: determining to export an embedded Subscriber Identity Module (eSIM) from the eUICC and to store securely the eSIM on the memory external to the eUICC; generating a single-use session parameter to support exportation of the eSIM; encrypting the eSIM with a key associated with the eUICC; formatting an eSIM package to include (i) the eSIM encrypted with the key, and (ii) the single-use session parameter; exporting the eSIM package from the eUICC to the memory external to the eUICC; and deleting the eSIM from the eUICC, wherein the eUICC maintains the single-use session parameter to enable re-installation of the eSIM on the eUICC when the eSIM package is loaded back onto the eUICC from the memory external to the eUICC.
9. The wireless communications device of claim 8 , wherein the single-use session parameter comprises a level 2 (L2) security value.
10. The wireless communications device of claim 8 , wherein the steps further include: receiving the eSIM package from the memory external to the eUICC; using the single-use session parameter to verify a validity of the eSIM package; and when the validity of the eSIM package is verified: installing the eSIM on the eUICC.
11. The wireless communications device of claim 10 , wherein the steps further include: deleting the single-use session parameter from the eUICC after verifying the validity of the eSIM package.
12. The wireless communications device of claim 10 , wherein the steps further include: causing the eSIM package to be deleted from the memory external to the eUICC.
13. The wireless communications device of claim 8 , wherein the eUICC determines to export and store securely the eSIM during an eSIM provisioning session between the eUICC and a provisioning server.
14. The wireless communications device of claim 13 , wherein the eUICC determines to export and store securely the eSIM in response to a lack of sufficient storage space on the eUICC.
15. A non-transitory computer readable storage medium configured to store instructions that, when executed by an embedded Universal Integrated Circuit Card (eUICC) included in a wireless communication device, cause the eUICC to carry out steps that include: determining to export an embedded Subscriber Identity Module (eSIM) from the eUICC and to store securely the eSIM on the memory external to the eUICC; generating a single-use session parameter to support exportation of the eSIM; encrypting the eSIM with a key associated with the eUICC; formatting an eSIM package to include (i) the eSIM encrypted with the key, and (ii) the single-use session parameter; exporting the eSIM package from the eUICC to the memory external to the eUICC; and deleting the eSIM from the eUICC, wherein the eUICC maintains the single-use session parameter to enable re-installation of the eSIM on the eUICC when the eSIM package is loaded back onto the eUICC from the memory external to the eUICC.
16. The non-transitory computer readable storage medium of claim 15 , wherein the single-use session parameter comprises a level 2 (L2) security value.
17. The non-transitory computer readable storage medium of claim 15 , wherein the steps further include: receiving the eSIM package from the memory external to the eUICC; using the single-use session parameter to verify a validity of the eSIM package; and when the validity of the eSIM package is verified: installing the eSIM on the eUICC.
18. The non-transitory computer readable storage medium of claim 17 , wherein the steps further include: deleting the single-use session parameter from the eUICC after verifying the validity of the eSIM package.
19. The non-transitory computer readable storage medium of claim 17 , wherein the steps further include: causing the eSIM package to be deleted from the memory external to the eUICC.
20. The non-transitory computer readable storage medium of claim 15 , wherein the eUICC determines to export and store securely the eSIM in response to a lack of sufficient storage space on the eUICC.
Cooperative Patent Classification codes for this invention. Click any code to explore related patents in that topic.
May 28, 2015
August 28, 2018
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.